CVE-2020-2174

Summary

Jenkins AWSEB Deployment Plugin 0.3.19 and earlier does not escape various values printed as part of form validation output, resulting in a reflected cross-site scripting vulnerability.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins AWSEB Deployment Pluginunspecified <= 0.3.19affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References